Abstract: A method of protecting an endpoint against a security threat detected at the endpoint, wherein the endpoint includes, in memory pages of the endpoint, an operating system (OS), a separate software entity, and remediation code, includes the steps of: transferring control of virtual CPUs (vCPUs) of the endpoint from the OS to the separate software entity; and while the separate software entity controls the vCPUs, storing, in an interrupt dispatch table, an instruction address corresponding to an interrupt, wherein the remediation code is stored at the instruction address, and replacing a next instruction to be executed by the OS, with an interrupt instruction, wherein the interrupt is raised when the OS executes the interrupt instruction, and the remediation code is executed as a result of handling of the interrupt that is raised.

Abstract: A repeater device includes a packet input and a packet output. A first path extends from the packet input to the packet output. The first path includes a transmitter having a transmitter input coupled to the packet input, a transmitter output coupled to the packet output, and a transmitter enable. A second path extends in parallel with the first path and includes a variable delay circuit. The variable delay circuit has an input coupled to the packet input and an output coupled to the transmitter enable of the transmitter.

Abstract: Tasks are selected for hibernation by recording user preferences for tasks having no penalty for hibernation and sleep; and assigning thresholds for battery power at which tasks are selected for a least one of hibernation and sleep. The assigning of the thresholds for battery power include considering current usage of hardware resources by a user and battery health per battery segment. A penalty score is determined for tasks based upon the user preferences for tasks having no penalty, and task performance including at least one of frequency of utilization, memory utilization, task dependency characteristics and task memory hierarchy. The penalty performance is a value including both the user preference and the task performance. Tasks can then be put into at least one of hibernation mode and sleep mode dictated by their penalty performance during the thresholds for battery power.

Abstract: A method comprises collecting data corresponding to a plurality of components in a system, wherein the data comprises information about one or more issues with the plurality of components. The data is analyzed and categorized based at least in part on the analysis. In the method, one or more application programming interfaces (APIs) are selected to monitor respective statuses of the plurality of components, wherein the selection is based at least in part on the categorization of the data, and the data is pushed to the one or more APIs.

Abstract: Methods and systems for authenticating operations of an aircraft are disclosed. In at least one embodiment, the method may include: receiving, by an aircraft data gateway, a request for an operation of an aircraft from an operations portal; performing a first digital authentication of the request using first digital authentication information; performing a second digital authentication of the request using second digital authentication information, the second digital authentication information being distinct from the first digital authentication information; and executing the operation of the aircraft upon validating the first digital authentication and the second digital authentication.

Abstract: Techniques for building, validating, and utilizing custom database software in a shared management environment are described. A database customization service allows users to provide database installation files as part of a configuration to generate a custom database engine version. The creation of custom database engine versions may be governed by policy, and the database customization service may provide recommendations for creating custom database engine versions according to various criteria. The custom database engine version can be built, and its functionality and correctness verified. Users may launch database instances using these custom database engine versions that can be managed under a shared management scheme where both users and the database customization service can perform host-level management.

Abstract: Various embodiments are directed to processing and executing digital asset transfers between two users. An example method includes receiving a data object defining a digital asset transfer, and the data object may be a query from the first user to initiate an outbound transfer to a second user or an approval of a request for digital asset units from the second user. The method further includes retrieving account balance data objects associated with the digital asset accounts for the first and second users. The method further includes, responsive to determining that the digital asset transfer satisfies one or more transfer conditions, executing the digital asset transfer by executing a closed-loop debit from the first user and executing a closed-loop credit to the second user. The method further includes updating the account balance data object to reflect the resulting balances of each digital asset account.

Abstract: Tasks are selected for hibernation by recording user preferences for tasks having no penalty for hibernation and sleep; and assigning thresholds for battery power at which tasks are selected for a least one of hibernation and sleep. The assigning of the thresholds for battery power include considering current usage of hardware resources by a user and battery health per battery segment. A penalty score is determined for tasks based upon the user preferences for tasks having no penalty, and task performance including at least one of frequency of utilization, memory utilization, task dependency characteristics and task memory hierarchy. The penalty performance is a value including both the user preference and the task performance. Tasks can then be put into at least one of hibernation mode and sleep mode dictated by their penalty performance during the thresholds for battery power.

Abstract: High-speed data communication devices, e.g., repeaters, interfacing between a host and a peripheral operate such that high-speed components except for a host-side squelch detector are set or maintained in a deactivated state during an idle period of a micro frame. In an example, a start of a micro frame is detected on a data bus during a first time period. In a second time period after the first time period, the high-speed communication device determines whether at least one data packet is contained in the micro frame. When it is determined during the second time period that no data packet is contained in the micro frame, active components, except a squelch detector, are controlled to be inactive during a third time period after the second time period.

Abstract: Provided are a method, system, and computer-readable recording medium for registering a node in a zero trust remote access system. The method includes: receiving a request to subscribe a node to a zero trust remote access system for a network; generating a subscription identification (ID) for the node based on one or more parameters of the node; configuring the node with security logging; initiating a service of the node based on a trust percentage calculated for the node according to a security configuration of the node; and receiving security logs from the node based on the configured security logging.

Abstract: Methods, systems, and devices for wireless communications are described. In a wireless audio system, a first wireless device may generate a first media stream associated with a first media mode and a second media stream associated with a second media mode, buffer the first media stream in accordance with a first latency time value for adjusting a first latency time of the first media stream and buffering the second audio stream, independently from the first media stream, in accordance with a second latency time value for adjusting a second latency time of the second media stream, and transmit a mixed media stream including the buffered first media stream mixed with the buffered second media stream to a second wireless device.

Abstract: Provided are a method, system, and computer-readable recording medium for controlling zero trust remote access to a network system. The method includes: receiving a request of a user to access a target node in the network system; determining whether the user is a trusted user or an untrusted user based on whether the user has a subscription identification (ID) registered and valid in the network system; based on determining that the user is the untrusted user, generating the subscription ID for the user; validating a trust of the user; determining a validity period for the subscription ID of the user based on the validated trust; and providing the user with access to the target node in accordance with the validity period.

Abstract: In one set of embodiments, an enhanced next generation anti-virus (NGAV) system is provided. In certain embodiments, this system includes a hypervisor-level agent that backs up VM data only when an instance of a guest application running in the VM has been flagged by the NGAV system as being potentially malicious (rather than on a constant, proactive basis). Further, the hypervisor-level agent performs this backup only with respect to data modified by that specific guest application instance (rather than backing up all data modified by the VM) and writes the backed-up data to a secure storage location which is inaccessible to the guest. The combination of these features addresses many of the problems and inefficiencies of existing NGAV systems.

Abstract: Various embodiments of the present disclosure are generally directed to processing conversions of digital assets to fiat currency. An example method includes obtaining a conversion rate for a digital asset via an API, providing the conversion rate via a client device, receiving a digital asset conversion request and executing a digital asset conversion within a configurable time period. Executing the digital asset conversion includes causing digital asset units to be debited from the digital asset user account and causing fiat currency units to be credited to a fiat currency user account. The method further includes dynamically providing a notification of execution of the digital asset conversion via the client device, updating account balance data objects associated with the digital asset user account and the fiat currency user account, and subsequent to executing the digital asset conversion, executing a fiat currency transaction (e.g., a settlement) with a digital asset exchange system.

Abstract: Exemplary semiconductor processing systems may include a gas source coupled with a number of processing chambers. The gas source may include a controller. Each chamber may include an exhaust assembly having a foreline and a pump. The systems may include at least one abatement system coupled with each pump. The systems may include a plurality of exhaust lines that extend between each pump and the abatement system. The systems may include a dilution gas source coupled with each exhaust line. The systems may include a mass flow controller coupled between the dilution gas source and each exhaust line. The systems may include a temperature sensor coupled with each exhaust line between the pump and the abatement system. The temperature sensor may be communicatively coupled with the controller of the gas source, which may control flow of a gas to a chamber based on a measurement from the temperature sensor.

Abstract: Aspects of the present disclosure provide methods, devices, and computer-readable storage media that support dynamic enforcement of access control policies in a standardized manner. An administrator console enables access control policies to be defined as classes that may be combined and leveraged to rapidly define access control policies for enforcement in a standardized manner. An interceptor operates to detect access requests and perform policy administration (e.g., determining to grant/deny access) for the access requests and where access is granted, initiate policy resolution (e.g., determine any restrictions on the granted access request). An enforcer provides functionality for enforcing policy resolution outcomes, such as restricting access to information stored in a database or disabling interactive elements of a user interface.

Abstract: High-speed data communication devices, e.g., repeaters, interfacing between a host and a peripheral operate such that high-speed components except for a host-side squelch detector are set or maintained in a deactivated state during an idle period of a micro frame. In an example, a start of a micro frame is detected on a data bus during a first time period. In a second time period after the first time period, the high-speed communication device determines whether at least one data packet is contained in the micro frame. When it is determined during the second time period that no data packet is contained in the micro frame, active components, except a squelch detector, are controlled to be inactive during a third time period after the second time period.

Abstract: A method of implementing a network-enabled secure door lock, comprising obtaining measurements of an environment associated with a door from a variety of sensor types; generating, based at least in part on the measurements, a set of inputs to a machine-learning model; inputting the set of inputs into the machine learning model to determine a status of the door; generating a message that indicates the status of the door; and transmitting the message to a user device.

Abstract: System and method for executing scan operations on computing systems use a sparse file that represents a storage device of a computing system to scan a file stored in the storage device. The sparse file is created and mounted to a scanner appliance such that the sparse file appears to a scan engine of the scanner appliance as a local storage device. When a read request for the file stored in the storage device is issued from the scan engine that results in an implicit read request to the sparse file, the implicit read request is trapped. While the implicit read request is trapped, data of the file is retrieved from the storage device of the computing system to the scanner appliance using a communication transport. The retrieved data of the file is then scanned using the scan engine at the scanner appliance.

Abstract: Disclosed are various embodiments for an authentication service. A unique identifier is associated with a device access token for a client to be authenticated. An authentication identifier is sent to an authenticated client. The client to be authenticated communicates the authentication identifier and unique identifier to the authentication service to complete authentication.